In regard to so-called security systems called ZScaler (HTTPS interception) and DLP.
Sure, it’s a nuisance to have transient systems that do nothing 80% of the time, break common legitimate use cases 19.99% of the time, and catch inadvertent user errors for 0.01% of the time.
This is the text of the General Data Protection Regulation (GDPR).
20180516/http://eur-lex.europa.eu/legal-content/EN/TXT/HTML/?uri=CELEX:32016R0679&from=EN